CVE-2022-50586

Nagios XI versions prior to 5.8.9 are vulnerable to cross-site scripting XSS in the BPI component via the info URL field. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...

CVE-2022-50586

CVE-2022-50586 affects Nagios XI pre-5.8.9 with stored XSS in the BPI component’s info URL field. Root cause: insufficient validation/escaping of user-supplied input, enabling injection of arbitrary script into a victim’s browser. Impact is described as cross-site scripting in Nagios XI web UI; n...

Nagios XI 安全漏洞

Nagios XI is a suite of IT infrastructure monitoring solutions from US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems, and more. A security vulnerability exists in Nagios XI versions prior to 5.8.9, which stems from insufficient validation...

PT-2023-30095 · Radare2 +1 · Radare2 +1

Name of the Vulnerable Software and Affected Versions: radare2 versions 5.8.9 and earlier Description: An out-of-bounds read exists in the print insn32 function of libr/arch/p/nds32/nds32-dis.h. This issue affects radare2 versions prior to 5.8.9. Recommendations: For versions 5.8.9 and earlier,...